Privacy Policy
Last updated: 15 June 2026
AssessKit ("we", "us", "our") is operated by Crocker Digital Ltd (Company No. 17008789), registered in England and Wales. This policy explains what data we collect through this website and how we use it.
What we collect
- Account data: When you create an account, we collect your email address, name and organisation details. We use this to operate your account, provide the service and send service-related emails.
- Assessment data: Information you enter — clients, sites, assessments, findings and photos — is stored to provide the service to you. You control this data and can export or request deletion of it at any time.
- Analytics: We use GoatCounter, a privacy-friendly analytics tool that does not use cookies and does not collect personal data. It records page views and referrer information only. No IP addresses are stored.
What we do not collect
- We do not use tracking cookies or advertising pixels.
- We do not sell or share your email address with third parties.
- We do not store payment card details — payments are processed by Stripe.
Your rights
Under UK GDPR, you have the right to access, correct, or delete your personal data. To exercise these rights, contact us at support@assesskit.co.uk.
Data storage
Your account and assessment data is stored securely on UK/EU cloud infrastructure. See our sub-processors list for the providers involved. Analytics data is processed by GoatCounter (hosted in the EU).
How long we keep data
We keep your account and assessment data while your subscription is active. On cancellation, we retain your organisation's data for a 90-day grace period — CSV and PDF export remain available throughout that window — and then hard-delete it. Audit logs are kept for 12 months and our transactional email log for 90 days. Soft-deleted clients and sites are kept for 30 days, then hard-deleted. Stripe retains payment records for 7 years under UK tax law. Database backups follow Supabase's managed-backup policy (a rolling window of up to 30 days on the paid plan). The full breakdown lives in our internal data-handling record and is mirrored in the Data Processing Agreement.
Changes
We may update this policy as the product develops. Material changes will be noted on this page with an updated date.
Contact
Crocker Digital Ltd, Company No. 17008789. Contact us.